Informace o publikaci

Decision Support for Mission-Centric Cyber Defence



Druh Článek ve sborníku
Konference Proceedings of the 14th International Conference on Availability, Reliability and Security (ARES 2019)
Fakulta / Pracoviště MU

Ústav výpočetní techniky

Klíčová slova Attack graph;Bayesian network;Cyber situational awareness;Decision support;Mission resilience
Přiložené soubory
Popis In this paper, we propose a novel approach to enterprise mission modeling and mission-centric decision support for cybersecurity operations. The goal of the decision support analytical process is to suggest an effective response for an ongoing attack endangering established mission security requirements. First, we propose an enterprise mission decomposition model to represent the requirements of the missions' processes and components on their confidentiality, integrity, availability. The model is illustrated in a real-world scenario of a medical information system. Second, we propose an analytical process that calculates mission resilience metrics using the attack graphs and Bayesian network reasoning. The process is designed to help cybersecurity operations teams in understanding the complexity of a situation and decision making concerning requirements on enterprise missions.
Související projekty: